CISA is aware of active exploitation of a new remote code execution (RCE) vulnerability enabling unauthorized access to on-premise SharePoint servers. While the scope and impact continue to be assessed, the new Common Vulnerabilities and Exposures (CVE), CVE-2025-53770, is a variant of the existing vulnerability CVE-2025-49706 and poses…
FortiGuard Labs analyzes NailaoLocker ransomware, a unique variant using SM2 encryption and a built-in decryption function. Learn how it works, why it matters, and how Fortinet protects against it. Source link Author: Fortinet Article used for cyber security disclosure.
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-25257 Fortinet FortiWeb SQL Injection Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Binding…
FortiCNAPP Composite Alerts link weak signals into clear timelines—helping security teams detect cloud-native threats earlier and triage them faster. Source link Author: Fortinet Article used for cyber security disclosure.
Meet Aldo di Mattia, a director of specialized systems engineering and cybersecurity advisory in Fortinet’s Rome office, shows how Fortinet employees make an impact both at the office and in their local communities. Source link Author: Fortinet Article used for cyber security disclosure.
FortiCNAPP Labs uncovers Lcrypt0rx, a likely AI-generated ransomware variant used in updated H2Miner campaigns targeting cloud resources for Monero mining. Source link Author: Fortinet Article used for cyber security disclosure.
CISA released six Industrial Control Systems (ICS) advisories on July 15, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-196-01 Hitachi Energy Asset Suite ICSA-25-196-02 ABB RMC-100 ICSA-25-196-03 LITEON IC48A and IC80A EV Chargers ICSA-25-037-02 Schneider Electric EcoStruxure…
Learn more about the first INTERPOL Cybercrime Expert Group (#CyberEX) meeting at INTERPOL headquarters in Lyon, France. The group discussed deep and wide-ranging insights on how to combat cybercrime through effective disruption strategies, collaborative investigation efforts, innovative prevention mechanisms, and the empowerment of and partnership…
